Описание
Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check.
Уязвимые конфигурации
Конфигурация 1Версия до 25.04.0 (исключая)
cpe:2.3:a:freedesktop:poppler:*:*:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00079
Низкий
4 Medium
CVSS3
7.1 High
CVSS3
Дефекты
CWE-125
Связанные уязвимости
CVSS3: 4
ubuntu
10 месяцев назад
Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check.
CVSS3: 4
redhat
10 месяцев назад
Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check.
CVSS3: 4
debian
10 месяцев назад
Poppler before 25.04.0 allows crafted input files to trigger out-of-bo ...
EPSS
Процентиль: 23%
0.00079
Низкий
4 Medium
CVSS3
7.1 High
CVSS3
Дефекты
CWE-125